Slashdot Mirror

← Back to Stories (view on slashdot.org)

S. Korea Diverts Network From Huawei Networks

Posted by timothy on from the but-the-marines-are-always-saying-huawei dept.

An anonymous reader writes with this excerpt from The Verge: "The South Korean government has decided to route sensitive data away from networks operated by Huawei, amid longstanding fears from the U.S. that the Chinese company's infrastructure could be used to spy on communications. As the Wall Street Journal reports, the U.S. had been urging its South Korean allies to route government communications away from Huawei networks, claiming that the infrastructure could be used to spy on communications with American military bases there. As a result, Huawei equipment will not be used at any American military base in South Korea. The Obama administration denies playing a role in the decision, and South Korean officials have not commented. The Journal reports that the White House made a point of keeping the talks private because it didn't want to be seen as meddling in its ally's business affairs."

3 of 76 comments (clear)

  1. Re: Use Cisco instead... by chill · · Score: 4, Informative

    Uh, no. You just read the *headlines* on Snowden articles and not the details, didn't you?

    Backdooring Cisco or Juniper equipment required physical access or someone to upload a Trojan firmware.

    Huawei has a *remote upgrade* feature that allows remote firmware programming. They are very..."user" friendly.

    --
    Learning HOW to think is more important than learning WHAT to think.
  2. Re:Who cares by wonkey_monkey · · Score: 4, Interesting

    Thank tho Snowden we now know that Cisco is even worse in that regard.

    Do we? Really?

    --
    systemd is Roko's Basilisk.
  3. Re: Use Cisco instead... by EmperorArthur · · Score: 4, Informative

    Huawei firmware is not known for its quality. It has so many nasty bugs and security holes, the remote firmware programming interface is just a safer way to do it.

    Cisco and Juniper are much better (at least their boxes crash or do idiotic things a lot less than Huawei boxes), but still not anywhere close to safe enough for the job, as one can easily check by hunting for C and J firmware exploits in several sites.

    I always point to this video when people ask what my big deal with Huawei is. The takeaway, they found early 1990s bugs and security everywhere, including all memory being world accessible and mapped read, write, execute. That means you just need an exploit, no privilege escalation necessary. Also, not only are these exploits easy to find, Huawei doesn't publish CVEs or changelogs for their new firmware. Combine that with most debugging features only being available in Chinese.... Yeah, I'll pass.

    http://www.youtube.com/watch?v...

    --
    So lets pretend that we've just completed writing this code, as opposed to having just completed sabotaging it -Altera